Roger A. Light
|
d8505624d0
|
Fix and tests for security bug #541870.
|
7 years ago |
|
Roger A. Light
|
36b5421c59
|
Fix and tests for security bug #543401.
|
7 years ago |
|
Roger A. Light
|
55ca61f14e
|
Fix segfault on HUP when bridges and security options are configured.
Closes #849. Closes #965. Thanks to Wolfgand Hottgenroth and Dustin Sallings.
|
7 years ago |
|
Roger A. Light
|
ecb4006f38
|
Don't reject ACL patterns without %u or %c, just warn.
Using `pattern blah/#` is a legitimate method of getting a global ACL.
We shouldn't be changing behaviour in a fixes release.
|
7 years ago |
Wolfgang Hottgenroth
|
88456c655f
|
Move check whether context is a bridge in front of check whether a listener
exists for context. New test now passes.
Signed-off-by: Wolfgang Hottgenroth <wolfgang.hottgenroth@icloud.com>
|
7 years ago |
|
Roger A. Light
|
39170d1181
|
ACL patterns that do not contain either %c or %u are now rejected.
Closes #209.
Bug: https://github.com/eclipse/mosquitto/issues/209
Signed-off-by: Roger A. Light <roger@atchoo.org>
|
7 years ago |
|
Roger A. Light
|
6c7ecd7e97
|
Fix compiling without TLS.
|
8 years ago |
|
Roger A. Light
|
2d1667b120
|
Remove c99-isms due to problems with dependencies.
|
8 years ago |
|
Roger A. Light
|
23230b7b18
|
Add per-listener acl handling.
|
8 years ago |
|
Roger A. Light
|
f4d238be18
|
Bump copyright years.
|
8 years ago |
|
Roger A. Light
|
8a22b918c0
|
Fix Coverity Scan defects.
|
8 years ago |
|
Roger A. Light
|
fd7b08c0eb
|
Per listener psk_file.
|
8 years ago |
|
Roger A. Light
|
7046691b7d
|
Reload password files properly.
|
8 years ago |
|
Roger A. Light
|
aa87f3c170
|
Per listener allow_anonymous.
|
8 years ago |
|
Roger A. Light
|
a571104809
|
Check correct password list.
|
8 years ago |
|
Roger A. Light
|
57e852db05
|
Per listener password file.
|
8 years ago |
|
Roger A. Light
|
b4c72e8fc0
|
Fix HUP disconnecting clients incorrectly.
Bug: https://github.com/eclipse/mosquitto/issues/657
|
8 years ago |
|
Roger A. Light
|
8795f063d4
|
Add ability to deny access to SUBSCRIBE messages.
This is as well as the current read/write accesses. Currently for auth
plugins only.
|
8 years ago |
|
Roger A. Light
|
5a267368d7
|
Merge branch 'master' into develop
|
8 years ago |
|
Roger A. Light
|
0ba0bc434e
|
Use constant time memcmp for password checks.
|
8 years ago |
|
Roger A. Light
|
e74203de2c
|
Merge branch 'master' into develop
|
8 years ago |
|
Roger A. Light
|
cd17ca45cd
|
[462] Relax CVE-2017-7650 checks.
Checks for '/' are no longer made, this character is a much lower risk
and is widely used in usernames.
Bug: https://github.com/eclipse/mosquitto/issues/462
|
8 years ago |
|
Roger A. Light
|
6e7d02ba16
|
Fix for CVE-2017-9868 for Windows.
|
8 years ago |
|
Roger A. Light
|
bb61cd2dee
|
Fix merge error.
|
8 years ago |
|
Roger A. Light
|
b61fefcf08
|
Merge branch 'master' into develop
|
8 years ago |
|
Roger A. Light
|
9af3c6958f
|
Fix for CVE-2017-7650.
|
8 years ago |
|
Roger A. Light
|
91b308a11d
|
Merge branch 'master' into develop
|
9 years ago |
|
Roger A. Light
|
017db6706f
|
Rename mosquitto_broker.h -> mosquitto_broker_internal.h
|
9 years ago |
|
Roger A. Light
|
8378fe44cf
|
Update copyrights.
|
9 years ago |
|
Roger A. Light
|
56d0f74725
|
Defer support for TLS-PSK.
|
9 years ago |
|
Roger A. Light
|
fff741613e
|
Support for openssl 1.1.0.
|
9 years ago |
|
Roger A. Light
|
37dceb38f9
|
Fix some defects discovered by coverity.
|
10 years ago |
|
Roger A. Light
|
1b190b14f1
|
Fix auth deferring with no pwfile defined.
|
10 years ago |
|
Roger A. Light
|
6087d4bcb6
|
Fix incorrect calloc/mosquitto__free pair.
|
10 years ago |
|
Roger A. Light
|
fda0cb3d45
|
Fix incorrect $SYS heap memory reporting when using ACLs.
|
10 years ago |
|
Roger A. Light
|
4afe1a1502
|
Swap plugin+built in order.
|
10 years ago |
|
Roger A. Light
|
b4fbe904d4
|
Remove more unnecessary "if(x) mosquitto__free(x)" checks.
|
10 years ago |
|
Roger A. Light
|
436d3fac19
|
Merge branch 'fixes' into develop
Conflicts:
CMakeLists.txt
ChangeLog.txt
config.mk
installer/mosquitto.nsi
installer/mosquitto64.nsi
lib/mosquitto.c
lib/mosquitto.h
src/loop.c
|
10 years ago |
|
Roger A. Light
|
9fb288d283
|
Fix malloc/_mosquitto_free mismatch.
|
10 years ago |
|
Roger Light
|
e2324ff9bb
|
Merge remote-tracking branch 'remotes/origin/master' into develop
Conflicts:
CMakeLists.txt
ChangeLog.txt
THANKS.txt
appveyor.yml
config.mk
installer/mosquitto-cygwin.nsi
installer/mosquitto.nsi
lib/messages_mosq.c
lib/messages_mosq.h
lib/mosquitto.c
lib/mosquitto.h
lib/net_mosq.c
lib/net_mosq.h
lib/send_client_mosq.c
lib/send_mosq.c
lib/socks_mosq.c
lib/will_mosq.c
src/bridge.c
src/conf.c
src/context.c
src/database.c
src/loop.c
src/mosquitto.c
src/mosquitto_broker.h
src/net.c
src/read_handle.c
src/read_handle_server.c
src/subs.c
|
10 years ago |
|
Roger A. Light
|
3f86d316d8
|
Allow mosquitto__free(NULL).
Remove all unnecessary "if(X)" before a call to mosquitto__free.
|
10 years ago |
|
Roger A. Light
|
e773ea1bee
|
[464543] Run default checks after plugins.
|
10 years ago |
|
Roger A. Light
|
21946ace6c
|
mosquitto__log_printf -> log__printf
|
11 years ago |
|
Roger A. Light
|
b598aec385
|
Sys -> user includes.
|
11 years ago |
|
Roger A. Light
|
11756d24c8
|
Change internal funcs _foo_bar() to foo__bar().
|
11 years ago |
|
Roger A. Light
|
960b3ef32d
|
Fix possible minor memory leak on acl parsing.
|
11 years ago |
|
Roger A. Light
|
ccc8a81187
|
Ignore multiple spaces when parsing acl files.
|
11 years ago |
|
Roger A. Light
|
28404350c4
|
Fix possible crash when using pattern ACLs.
|
11 years ago |
|
Roger A. Light
|
22e09ae613
|
[455402] Fix potential hang with pattern acls.
Fix hang if pattern acl contains a %u but an anonymous client connect.
Thanks to Christoph Krey.
Bug: https://bugs.eclipse.org/bugs/show_bug.cgi?id=455402
|
11 years ago |
|
Roger A. Light
|
1b4903b41e
|
[431780] ACL files can contain a space in username/topic.
Bug: https://bugs.eclipse.org/bugs/show_bug.cgi?id=431780
|
11 years ago |